search menu icon-carat-right cmu-wordmark
Carnegie Mellon University

Software Engineering Institute

CERT Coordination Center

CERT/CC Vulnerability Notes Database


Published Public Updated ID CVSS Title
2005-06-14 2005-06-14 2005-06-14 VU#489397 Microsoft Server Message Block vulnerable to buffer overflow
2002-09-05 2002-08-30 2002-09-05 VU#965097 HP Tru64 UNIX "lpc" contains buffer overflow (SSRT2260)
2007-04-12 2007-03-27 2007-04-14 VU#589097 HP Mercury Interactive Quality Center Spider Module ActiveX control stack buffer overflow
2002-09-16 2002-03-28 2002-09-16 VU#209363 IBM AIX vulnerable to buffer overflow in RCP
2005-01-13 2004-12-23 2005-02-01 VU#995038 Debian Linux Netkit telnetd-ssl contains a format string vulnerability
2005-01-26 2005-01-26 2005-01-26 VU#583638 Cisco IOS contains DoS vulnerability in MPLS packet processing
2002-06-05 2002-05-29 2002-12-06 VU#779163 Microsoft Exchange 2000 exhausts server resources while attempting to process malformed mail attributes
2003-04-15 2003-04-16 2003-04-16 VU#446338 Microsoft Windows kernel contains stack overflow
2005-12-28 2005-12-27 2006-01-20 VU#181038 Microsoft Windows Metafile handler SETABORTPROC GDI Escape vulnerability
2004-05-19 2004-05-19 2004-07-13 VU#192038 CVS contains a heap overflow in the handling of flag insertion
2008-06-06 2008-06-04 2008-06-06 VU#558163 HP Online Support Services ActiveX GetFileTime() buffer overflow
2005-05-16 2005-05-03 2005-05-24 VU#706838 Apple Mac OS X vulnerable to buffer overflow via vpnd daemon
2005-04-12 2005-04-12 2005-08-18 VU#774338 Microsoft Internet Explorer DHTML objects contain a race condition
2001-11-19 2001-11-19 2002-11-15 VU#279763 RhinoSoft Serv-U remote administration client transmits password in plaintext
2001-11-27 2000-08-10 2002-06-20 VU#635463 Microsoft SQL Server and Microsoft Data Engine (MSDE) ship with a null default password

Sponsored by CISA.

Download PGP Key

Read CERT/CC Blog

Learn about Vulnerability Analysis